CVE-2025-8851

EUVD-2025-24150
A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the component tiffcrop. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The patch is identified as 8a7a48d7a645992ca83062b3a1873c951661e2b3. It is recommended to apply a patch to fix this issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
Affected Products (NVD)
VendorProductVersion
libtifflibtiff
𝑥
≤ 4.5.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tiff
bookworm
unimportant
bookworm (security)
unimportant
bullseye
unimportant
bullseye (security)
unimportant
forky
4.7.1-2
fixed
sid
4.7.1-2
fixed
trixie
4.7.0-3+deb13u2
fixed
trixie (security)
4.7.0-3+deb13u2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tiff
bionic
Fixed 4.0.9-5ubuntu0.10+esm8
released
focal
Fixed 4.1.0+git191117-2ubuntu0.20.04.14+esm1
released
jammy
Fixed 4.3.0-6ubuntu0.11
released
noble
Fixed 4.5.1+git230720-4ubuntu2.3
released
plucky
Fixed 4.5.1+git230720-4ubuntu4.1
released
questing
not-affected
resolute
not-affected
trusty
Fixed 4.0.3-7ubuntu0.11+esm15
released
xenial
Fixed 4.0.6-1ubuntu0.8+esm18
released
qtwebengine-opensource-src
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
plucky
ignored
questing
needs-triage
resolute
needs-triage
texmaker
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
plucky
ignored
questing
needs-triage
resolute
needs-triage
xenial
ignored
gdal
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
plucky
not-affected
questing
not-affected
resolute
not-affected
trusty
needs-triage
xenial
ignored
neuron
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
not-affected
plucky
not-affected
questing
not-affected
resolute
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libtiff-devel
suse enterprise desktop 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise desktop 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP7
4.7.1-150600.3.23.1
fixed
libtiff5
suse enterprise server 12 SP3
4.0.9-44.106.1
fixed
libtiff5-32bit
suse enterprise server 12 SP3
4.0.9-44.106.1
fixed
libtiff6
suse enterprise desktop 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise desktop 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP7
4.7.1-150600.3.23.1
fixed
libtiff6-32bit
suse enterprise desktop 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise desktop 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise sap 15 SP7
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP6
4.7.1-150600.3.23.1
fixed
suse enterprise server 15 SP7
4.7.1-150600.3.23.1
fixed
tiff
suse enterprise server 12 SP3
4.0.9-44.106.1
fixed
Common Weakness Enumeration
References
http://www.libtiff.org/
https://gitlab.com/libtiff/libtiff/-/commit/8a7a48d7a645992ca83062b3a1873c951661e2b3
https://vuldb.com/?ctiid.319382
https://vuldb.com/?id.319382
https://vuldb.com/?submit.624604
https://vuldb.com/?submit.624604